Live-Hack-CVE/CVE-2022-40267 Predictable Seed in Pseudo-Random Number Generator (PRNG) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T, CVE project by @Sn0wAlice Create: 2023-01-20 19:18:15 +0000 UTC Push: 2023-01-20 19:18:17 +0000 UTC |

Trinadh465/linux-4.1.15_CVE-2022-45934 Create: 2023-01-20 18:03:07 +0000 UTC Push: 2023-01-20 18:03:07 +0000 UTC |

Live-Hack-CVE/CVE-2022-32036 Tenda M3 V1.0.0.12 was discovered to contain multiple stack overflow vulnerabilities via the ssidList, storeName, and trademark parameters in the function formSetStoreWeb. CVE project by @Sn0wAlice Create: 2023-01-20 14:56:48 +0000 UTC Push: 2023-01-20 14:56:51 +0000 UTC |

Live-Hack-CVE/CVE-2015-4003 The oz_usb_handle_ep_data function in drivers/staging/ozwpan/ozusbsvc1.c in the OZWPAN driver in the Linux kernel through 4.0.5 allows remote attackers to cause a denial of service (divide-by-zero error and system crash) via a crafted packet. CVE project by @Sn0wAlice Create: 2023-01-20 14:56:43 +0000 UTC Push: 2023-01-20 14:56:47 +0000 UTC |

Live-Hack-CVE/CVE-2014-9428 The batadv_frag_merge_packets function in net/batman-adv/fragmentation.c in the B.A.T.M.A.N. implementation in the Linux kernel through 3.18.1 uses an incorrect length field during a calculation of an amount of memory, which allows remote attackers to cause a denial of service (mesh-node system crash) via fragmented pa CVE project by @Sn0wAlice Create: 2023-01-20 14:56:39 +0000 UTC Push: 2023-01-20 14:56:42 +0000 UTC |

Live-Hack-CVE/CVE-2016-4153 Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083. CVE project by @Sn0wAlice Create: 2023-01-20 14:56:34 +0000 UTC Push: 2023-01-20 14:56:37 +0000 UTC |

Live-Hack-CVE/CVE-2016-1033 Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-102 CVE project by @Sn0wAlice Create: 2023-01-20 14:56:30 +0000 UTC Push: 2023-01-20 14:56:33 +0000 UTC |

Live-Hack-CVE/CVE-2016-4154 Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083. CVE project by @Sn0wAlice Create: 2023-01-20 14:56:27 +0000 UTC Push: 2023-01-20 14:56:29 +0000 UTC |

Live-Hack-CVE/CVE-2023-22373 Cross-site scripting vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows a remote authenticated attacker to inject an arbitrary script and obtain the sensitive information. CVE project by @Sn0wAlice Create: 2023-01-20 14:56:22 +0000 UTC Push: 2023-01-20 14:56:24 +0000 UTC |

Live-Hack-CVE/CVE-2023-22339 Improper access control vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows a remote unauthenticated attacker to bypass access restriction and obtain the server certificate including the private key of the product. CVE project by @Sn0wAlice Create: 2023-01-20 14:56:18 +0000 UTC Push: 2023-01-20 14:56:21 +0000 UTC |

Live-Hack-CVE/CVE-2023-22334 Use of password hash instead of password for authentication vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows a remote authenticated attacker to obtain user credentials information via a man-in-the-middle attack. CVE project by @Sn0wAlice Create: 2023-01-20 14:56:14 +0000 UTC Push: 2023-01-20 14:56:17 +0000 UTC |

Live-Hack-CVE/CVE-2023-22331 Use of default credentials vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows a remote unauthenticated attacker to alter user credentials information. CVE project by @Sn0wAlice Create: 2023-01-20 14:56:11 +0000 UTC Push: 2023-01-20 14:56:13 +0000 UTC |

nidhi7598/linux-3.0.35_CVE-2022-45934 Create: 2023-01-20 12:46:42 +0000 UTC Push: 2023-01-20 12:46:42 +0000 UTC |

Live-Hack-CVE/CVE-2023-22745 tpm2-tss is an open source software implementation of the Trusted Computing Group (TCG) Trusted Platform Module (TPM) 2 Software Stack (TSS2). In affected versions `Tss2_RC_SetHandler` and `Tss2_RC_Decode` both index into `layer_handler` with an 8 bit layer number, but the array only has `TPM2_ERROR_TSS2_RC_LAYER_COUNT CVE project by @Sn0wAlice Create: 2023-01-20 09:20:24 +0000 UTC Push: 2023-01-20 09:20:26 +0000 UTC |

Live-Hack-CVE/CVE-2022-46476 D-Link DIR-859 A1 1.05 was discovered to contain a command injection vulnerability via the service= variable in the soapcgi_main function. CVE project by @Sn0wAlice Create: 2023-01-20 09:20:20 +0000 UTC Push: 2023-01-20 09:20:22 +0000 UTC |

Live-Hack-CVE/CVE-2022-31901 Buffer overflow in function Notepad_plus::addHotSpot in Notepad++ v8.4.3 and earlier allows attackers to crash the application via two crafted files. CVE project by @Sn0wAlice Create: 2023-01-20 09:20:17 +0000 UTC Push: 2023-01-20 09:20:19 +0000 UTC |

Live-Hack-CVE/CVE-2017-16259 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 09:20:13 +0000 UTC Push: 2023-01-20 09:20:15 +0000 UTC |

Live-Hack-CVE/CVE-2017-16314 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 08:15:31 +0000 UTC Push: 2023-01-20 08:15:34 +0000 UTC |

Live-Hack-CVE/CVE-2017-16313 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 08:15:28 +0000 UTC Push: 2023-01-20 08:15:30 +0000 UTC |

Live-Hack-CVE/CVE-2017-16316 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 08:15:24 +0000 UTC Push: 2023-01-20 08:15:26 +0000 UTC |